3 matches found
cn.sparrowmini:sparrow-bpm (=0.0.1), cn.sparrowmini:sparrow-form (=0.0.1) +13 more potentially affected by CVE-2023-50571 via org.jeasy:easy-rules-mvel (=4.1.0)
org.jeasy:easy-rules-mvel MAVEN version =4.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.jeasy:easy-rules-mvel and may be impacted: - cn.sparrowmini:sparrow-bpm =0.0.1 - cn.sparrowmini:sparrow-form =0.0.1 -...
CVE-2023-50571
CVE-2023-50571 affects easy-rules-mvel v4.1.0, with a remote code execution (RCE) vulnerability exploitable via the MVELRule component. The available sources in the provided documents identify the affected software and the existence of RCE, but do not include concrete patch versions or remediatio...
CVE-2023-50571
easy-rules-mvel v4.1.0 was discovered to contain a remote code execution RCE vulnerability via the component MVELRule...